Infra Vulnerability Management

What you will do:

• Conduct vulnerability scans, analyze reports, and validate potential findings; contribute to process improvements; and document.
• Configure and manage vulnerability scanners for both VM and Container (Kubernetes) environments, including their integration into the client’s software development lifecycle.
• Track and guide Vulnerability remediation efforts across the organization. Escalate issues and problems when needed.
• Coordinate PCI-DSS vulnerability scans, and support other compliance and risk management activities in the area of Vulnerability Management
• Must be able to interface and coordinate work efficiently and effectively with business colleagues and vendors in global locations and time zones

Qualifications and Skills:

• 2 - 3 years of demonstrated ability within information security vulnerability management, including the remediation process to address Operating System (Linux/Unix) vulnerabilities and
• misconfigurations.
• Experience with Kubernetes environments that include building, deploying, and supporting containerized images in Cloud environments.
• Experience with continuous delivery and integration (CI/CD) in Cloud and infrastructure engineering, and related tools (Jenkins/Tekton, Github etc.), and experience with programming or scripting
• languages such as Python/Go, or Bash/PowerShell.
• Self-starter with a bias towards action and can thrive in a fast-paced and ambiguous environment

Desired Qualifications:

• Experience with security vulnerability management tools is a plus (e.g. Tenable, Anchore).
• Knowledge of industry standard Risk scoring methodologies (CVSS, EPSS etc.)
• Experience with data analytics (querying, analysis, and visualization) solutions (Splunk, Hadoop etc.) is a plus
• Experience using ServiceNow, including features (related to Vulnerability Response and Orchestration) within ServiceNow, is highly preferred.
#LI-AS1#LI-HYBRID